This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: LRGDtwA4HW0Uco9GPzqFRttTUDKDhSgGURNTz+feccQ= Subject key identifier: 80:F3:69:98:34:CF:C2:0A:7D:B1:F2:C3:FA:C9:F4:11:39:5E:14:50 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 0600 Signing time: Sun 28 Dec 2025 22:11:12 +0000 Manifest this update: Sun 28 Dec 2025 22:11:11 +0000 Manifest next update: Sun 04 Jan 2026 22:11:11 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: AIE5701j7wz0IM7OqwK1+irQys42dIzq5dmb2klKn04=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Dec 28 22:11:11 2025 GMT Not After : Jan 4 22:11:11 2026 GMT Subject: CN=6951ab00-9233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5d:d5:09:f0:bd:53:fa:93:df:06:34:47:2c: 23:ce:4d:b7:26:84:76:ec:2f:c9:92:72:b6:45:29: 26:30:33:15:b1:0c:cf:ba:ea:38:f1:7d:a7:b8:ff: e0:65:70:f2:d4:08:94:6f:a9:84:3f:5d:19:b7:9c: 75:cd:89:87:6b:f5:e0:fa:7d:0d:af:ff:d2:7b:52: a0:6b:99:52:8c:d8:b2:53:d6:7d:97:fc:43:99:94: 80:98:19:78:50:65:4b:56:89:6e:13:0f:cb:9a:8d: 9c:78:f9:d5:eb:3b:3b:47:70:93:b5:97:0e:28:76: dd:5a:7e:99:39:43:16:12:81:0b:eb:88:e2:41:3e: d1:fb:a3:db:6b:35:e8:f8:65:eb:83:dd:5f:1e:7d: e2:79:c2:55:f2:cc:24:e8:e7:c6:45:5a:e9:0c:af: 1d:80:ef:15:9d:ae:29:6b:d0:b4:74:25:f5:43:39: e4:91:3d:ec:3f:99:97:e4:7b:d1:a5:37:d9:45:c0: ca:8e:39:1f:8d:9d:dd:6a:a1:9a:6b:c7:8b:b4:d0: 0f:9a:06:f0:7f:a7:3f:55:74:dc:8c:08:0c:68:4d: c3:82:b2:13:d2:54:ea:4e:7b:20:e2:11:77:4f:62: 55:95:2c:c1:f4:36:52:fa:7d:d8:0c:6e:70:38:98: 35:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F3:69:98:34:CF:C2:0A:7D:B1:F2:C3:FA:C9:F4:11:39:5E:14:50 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:38:08:c8:e0:a2:22:ca:9a:23:e7:1a:7d:6a:22:e4:d3:a5: 4d:20:37:37:bc:43:89:20:fa:d9:c3:e8:13:13:10:3d:7c:ee: cb:d5:7a:8a:02:7f:3f:08:a7:85:de:26:9a:15:26:7c:81:30: f3:57:e5:29:2c:bc:8d:1a:51:a1:12:0a:6e:50:92:59:9a:df: 07:2f:b1:cd:f8:85:1f:48:ab:bd:3e:75:a2:1c:c3:00:a0:6e: 26:35:03:84:07:12:89:03:1c:af:93:bc:07:02:bf:0f:19:5c: 50:23:a3:a4:81:f6:0f:df:50:6a:a7:ac:d6:fd:96:66:9f:7b: 1e:64:53:94:41:08:ec:94:fb:91:c8:90:60:b3:ff:7f:e7:9d: 37:81:0d:a3:2d:99:ad:03:ae:20:0d:d4:d2:5e:76:97:1f:32: 11:5c:5e:da:46:48:e7:73:fc:47:15:6b:fc:f7:87:0e:d8:50: e6:74:c0:ee:a7:8a:17:f6:1a:03:e3:ca:ef:d6:ad:76:d3:8a: 7c:27:ef:79:e8:4f:fa:9d:53:b7:af:5e:d5:e1:01:3c:62:ad: e7:26:f9:f7:b2:28:38:3b:54:d1:f8:ed:21:35:66:81:92:7b: 9c:e5:55:3d:58:26:24:76:3e:9b:2c:ed:b2:9c:d3:2c:c7:e9: d9:4b:e0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUxMjI4MjIxMTExWhcNMjYwMTA0MjIxMTExWjAYMRYwFAYD VQQDDA02OTUxYWIwMC05MjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs13VCfC9U/qT3wY0Rywjzk23JoR27C/JknK2RSkmMDMVsQzPuuo48X2nuP/g ZXDy1AiUb6mEP10Zt5x1zYmHa/Xg+n0Nr//Se1Kga5lSjNiyU9Z9l/xDmZSAmBl4 UGVLVoluEw/Lmo2cePnV6zs7R3CTtZcOKHbdWn6ZOUMWEoEL64jiQT7R+6PbazXo +GXrg91fHn3iecJV8swk6OfGRVrpDK8dgO8Vna4pa9C0dCX1QznkkT3sP5mX5HvR pTfZRcDKjjkfjZ3daqGaa8eLtNAPmgbwf6c/VXTcjAgMaE3DgrIT0lTqTnsg4hF3 T2JVlSzB9DZS+n3YDG5wOJg1cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDzaZg0 z8IKfbHyw/rJ9BE5XhRQMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsOAjI4KIiypoj5xp9aiLk06VNIDc3vEOJIPrZw+gTExA9fO7L1XqK An8/CKeF3iaaFSZ8gTDzV+UpLLyNGlGhEgpuUJJZmt8HL7HN+IUfSKu9PnWiHMMA oG4mNQOEBxKJAxyvk7wHAr8PGVxQI6OkgfYP31Bqp6zW/ZZmn3seZFOUQQjslPuR yJBgs/9/5503gQ2jLZmtA64gDdTSXnaXHzIRXF7aRkjnc/xHFWv894cO2FDmdMDu p4oX9hoD48rv1q1204p8J+956E/6nVO3r17V4QE8Yq3nJvn3sig4O1TR+O0hNWaB knuc5VU9WCYkdj6bLO2ynNMsx+nZS+Aw -----END CERTIFICATE-----Generated at Tue Dec 30 04:32:56 2025 by rpki-client